Sqreen
Real-time security monitoring and protection made easy Starting at $0/mo.
Improve your Heroku Security
Mitigate security threats by easily enabling security plugins into your app. Customize or use pre-built responses. Secure Heroku apps.
Get full visibility into app security
Monitor, troubleshoot, and optimize application security using network and in-app security signals
Block attacks in real-time
Enable the protection mode to block attacks ranging from OWASP Top 10, Account Takeovers, Brute force attacks, bad bots and more. Secure your app against hackers.
Intrusion Detection
Spot the users attacking your app or API. Detect attackers, Tor usage, suspicious logins, known malicious IPs or users, geo-location anomalies and more.
Stop worrying about security patches
Identify libraries putting your app at risk. Sqreen lets you know when new vulnerable dependencies are detected in your app.
Secure your customers
Prevent customer data from being leaked. Detect account takeovers or brute force attempts. Flag simultaneous connections, shared accounts or unusual activities.
Frictionless vulnerability remediation
Get the full context of an attack. Developers can easily fix vulnerabilities using the stack traces and payload of attacks. Improve the security of your app,
Prioritize your security efforts
Only get notified when important security events occur. Get severity levels on all the security anomalies happening in your app.
Easily enforce security headers
Enable security headers in just a couple of clicks. No more hassle configuring a Content Security Policy (CSP), Sqreen does it for you.
Integrates in minutes
Get protected easily by installing Sqreen in just a couple of minutes as a standard module in the application. It doesn’t require any configuration or maintenance.
Integrate your favorite tools
Integrate with Slack, New Relic Insights, Webhooks or Emails.
Meet your compliance requirements
Sqreen helps you meet your compliance requirements on OWASP Top 10, SOC2, GDPR, PCI and more
SOC2 and GDPR Compliance
Save time in security questionnaires and ease compliance to SOC2, PCi, GDPR, OWASP top 10 and more
Region Availability
The available application locations for this add-on are shown below, and depend on whether the application is deployed to a Common Runtime region or Private Space. Learn More
| Region | Available |
|---|---|
| United States | Available |
| Europe | Available |
| Region | Available | Installable in Space |
|---|---|---|
| Virginia | Available | |
| Oregon | Available | |
| Frankfurt | Available | |
| Tokyo | Available | |
| Sydney | Available | |
| Dublin | Available |
Plans & Pricing
-
- Real-time security dashboards
- Application vulnerabilities
- Attack logs
- Security Report
- Security Flow Map
- Attacker timeline
- Account Takeover Protection
- In-App Web Application Firewall (WAF)
- Runtime Application Self-Protection (RASP)
- Built-in security automation
- Advanced configurations
- Advanced protections
- Smart Content Security Policy (CSP)
- Unbranded blocking page
- Number of apps 1
- Monitored Requests / month 1 million
- Automation events 100,000
- Data Retention 1 day
- Number of seats 1
- Basic Team Permissions
- Advanced Team Permissions
- Audit logs
- Premium support and SLAs
- Managed SOC team
- Slack Integration
- Webhooks
- Splunk and SIEM integrations
-
- Real-time security dashboards
- Application vulnerabilities
- Attack logs
- Security Report
- Security Flow Map
- Attacker timeline
- Account Takeover Protection
- In-App Web Application Firewall (WAF)
- Runtime Application Self-Protection (RASP)
- Built-in security automation
- Advanced configurations
- Advanced protections
- Smart Content Security Policy (CSP)
- Unbranded blocking page
- Number of apps 1
- Monitored Requests / month up to 3 million
- Automation events 100,000
- Data Retention 7 days
- Number of seats 1
- Basic Team Permissions
- Advanced Team Permissions
- Audit logs
- Premium support and SLAs
- Managed SOC team
- Slack Integration
- Webhooks
- Splunk and SIEM integrations
-
- Real-time security dashboards
- Application vulnerabilities
- Attack logs
- Security Report
- Security Flow Map
- Attacker timeline
- Account Takeover Protection
- In-App Web Application Firewall (WAF)
- Runtime Application Self-Protection (RASP)
- Built-in security automation
- Advanced configurations
- Advanced protections
- Smart Content Security Policy (CSP)
- Unbranded blocking page
- Number of apps 1
- Monitored Requests / month up to 10 million
- Automation events 1 million
- Data Retention 30 days
- Number of seats 3
- Basic Team Permissions
- Advanced Team Permissions
- Audit logs
- Premium support and SLAs
- Managed SOC team
- Slack Integration
- Webhooks
- Splunk and SIEM integrations
-
- Real-time security dashboards
- Application vulnerabilities
- Attack logs
- Security Report
- Security Flow Map
- Attacker timeline
- Account Takeover Protection
- In-App Web Application Firewall (WAF)
- Runtime Application Self-Protection (RASP)
- Built-in security automation
- Advanced configurations
- Advanced protections
- Smart Content Security Policy (CSP)
- Unbranded blocking page
- Number of apps 1
- Monitored Requests / month up to 20 million
- Automation events 1 million
- Data Retention 30 days
- Number of seats 5
- Basic Team Permissions
- Advanced Team Permissions
- Audit logs
- Premium support and SLAs
- Managed SOC team
- Slack Integration
- Webhooks
- Splunk and SIEM integrations